Steve Jabs

I would presume it is because you aren't looping anything. Are you looking at getting the Username and then Amount for each user? If so, why don't you do just one query and combine them with a join? Then make a while loop on the result set in php.

That is actually a fantastic idea. Definitely going to do this if the HTTP_X_FORWARDED_FOR method doesn't pan out. HTTP_X_FORWARDED_FOR didn't really work out. It was hit or miss in the tests I ran. So I go the client to budge a bit and we are just doing a cookie/captcha routine with a bit of timeout between votes. Thanks guys for your help!

That is actually a fantastic idea. Definitely going to do this if the HTTP_X_FORWARDED_FOR method doesn't pan out.

Sadly the login system is not allowed to be implemented. Trust me. I basically begged and pleaded for it. And no, they aren't necessarily going to be web savvy, but since prizes are being given away on a montly basis for the top voted photo we are pretty much legally obligated to make it as secure as possibly...... just without a user login. I know, it's stupid, but thems be the breaks sadly. Thanks a ton, I'm going to give this a whirl.

So here is my dilemma. I am building a photo gallery system for a client in which visitors upload their photos to the system and these photos are inserted into a gallery that all visitors are able to see and vote on. But because visitors upload these photos for a contest they didn't want to force users to have to log in to upload or vote. They also only want visitors to be able to vote for one photo during a given time period (whether it be 24hrs or whatever). The problem I have is that I cannot for the life of me figure out a bullet-resistant way of accomplishing this through just cookies and storing their ip in the database. Because, a.) if the visitor is remotely web savvy they could just delete the cookie and vote again. Also b.), if there are a group of visitors in a company visit the site to vote on photos they are likely behind a firewall and would all produce the same ip. This would only let the first visitor vote and lock out the rest. So I'm basically looking for some guiding light here. I don't really need code... just a few fresh ideas of how I can accomplish this. Thanks guys! Long time board reader just never needed to sign up.